Description:
We are looking for a talented IT Audit Analyst to join our team. In this role, you will support the Internal Audit function in executing IT audit and compliance activities across the organization’s technology control environment. Reporting to the Senior Manager, this role provides hands-on exposure to ITGC testing, SOX compliance, and risk assessment in a complex, multi-entity enterprise environment.
Key Responsibilities
- ITGC & Application Controls: Assist in planning and executing IT audit engagements across logical access, change management, computer operations, and backup domains. Assess and test embedded IT application controls, system-generated reports, and interfaces.
- Control Testing & Documentation: Test the design and operating effectiveness of IT controls, document findings, and prepare supporting workpapers.
- SOX Compliance Support: Coordinate with stakeholders to gather evidence, validate control execution, and contribute to scoping, testing, and deficiency reporting.
- Remediation & Monitoring: Help monitor, follow up on, and track management action plans and remediation activities for identified deficiencies and audit findings.
- Data Analytics & Risk Trends: Perform data analytics on large datasets from key SOX systems to identify trends, anomalies, and exceptions, while staying current on emerging technology and cybersecurity risks.
What We’re Looking For
- Experience: 1–2 years of experience in IT audit, external audit, SOX compliance, or a related risk/controls role. Prior experience supporting audit teams with SOX compliance and data analytics tools is a plus.
- Education & Certifications: Bachelor’s degree in accounting, computer science, IT, or a similar field. A CISA and/or CPA designation (or actively pursuing) is required or considered a strong asset.
- Technical Skills: Ability to execute internal audits (planning, risk identification, and procedure development). Exposure to SOX programs and experience with ERP systems, Workday, ServiceNow, AWS, or home-grown applications is desired.
- Soft Skills: Highly organized with strict attention to detail, the ability to manage multiple workstreams, and strong communication skills to explain complex technical concepts to non-technical stakeholders.